$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft File: hgOgrKcgSw7-1k23DeUcdboDk1U.mft (raw, json) Hash identifier: ssVmTt3pOh+0ngN2isXl4oRGNKEO05HJkrE9630QCak= Subject key identifier: B4:B8:05:F9:11:D5:3F:92:D7:07:0F:71:34:98:FC:92:6E:C5:B1:D2 Authority key identifier: 86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 Certificate issuer: /CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Certificate serial: 02AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft Manifest number: 029A Signing time: Sat 17 May 2025 01:51:10 +0000 Manifest this update: Sat 17 May 2025 01:51:10 +0000 Manifest next update: Sat 24 May 2025 01:51:10 +0000 Files and hashes: 1: hgOgrKcgSw7-1k23DeUcdboDk1U.crl (hash: OPTQII71ll95jZJ/lyUNL7zUHLGKPIMtNxUNa4Doj7Q=) 2: 208C7D2E066C11EDB31C2239C4F9AE02.roa (hash: JpDBusAldNWd+IJVkNhhqJJDrViCPn/caif2F0IdJAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 01:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 683 (0x2ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EB2, serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Validity Not Before: May 17 01:51:10 2025 GMT Not After : May 24 01:51:10 2025 GMT Subject: CN=6827eb8e-e4dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e5:98:f7:66:40:4b:00:5e:9d:98:50:4f:9d: a9:a6:e7:da:23:38:c2:3b:3c:bb:74:e6:d0:d4:0c: 21:fd:54:0b:57:51:47:49:5a:2e:a3:34:24:ce:e8: c6:3b:f7:ac:1d:35:71:12:cd:1b:28:fd:9a:b7:5f: 77:cb:c6:f5:90:04:77:fe:7f:11:74:77:1f:14:c1: f4:0d:67:75:c1:39:6b:5d:46:a8:de:7e:f1:db:c6: 6f:5a:51:b0:5f:1d:43:5f:d0:03:52:a4:5d:ed:67: 4e:00:c7:fe:55:75:58:c2:f9:55:cf:49:34:f0:d6: 79:22:b1:4a:ea:bd:1c:81:67:bd:3c:a9:d3:2e:66: e5:bc:c0:a6:5b:fe:b9:a9:8e:f5:1c:a2:77:40:43: 8e:15:b5:88:e5:d5:fd:f5:ac:57:09:a5:a5:c7:ab: 94:a4:15:d8:e9:f0:29:08:8e:4c:a9:f9:0a:8b:70: cf:79:f3:61:d5:e3:c6:48:50:a1:0d:cf:7e:49:4a: 33:15:da:c3:56:51:6a:87:b3:f3:fe:83:71:2a:75: d2:cf:01:ab:6b:c8:04:3b:3c:b4:79:4b:65:94:a6: 7f:8f:ca:e3:62:1a:ef:e3:68:4d:76:f7:ad:ec:e7: ee:85:c8:34:64:3a:17:13:45:59:da:d7:62:5a:7a: 18:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B8:05:F9:11:D5:3F:92:D7:07:0F:71:34:98:FC:92:6E:C5:B1:D2 X509v3 Authority Key Identifier: keyid:86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:c2:8a:32:5e:0d:87:0a:72:43:c0:5f:fc:ca:8e:19:12:db: ec:59:a3:75:ff:17:32:f8:90:ac:d5:92:53:4d:3e:c3:50:f2: 4a:e6:f7:8e:44:ae:bf:2a:e3:f8:53:89:9f:46:64:26:84:ab: 10:f8:a2:ca:d7:19:e9:6d:b8:6b:0b:70:0a:44:67:b6:ab:1b: 4a:3b:0d:70:17:24:17:73:6e:1e:57:b8:bf:30:05:d3:af:a5: 5d:1d:fa:d3:94:31:55:78:69:26:17:63:a8:73:c8:c1:34:77: d8:58:49:02:2e:b9:e4:df:83:be:d6:2b:ef:f8:4c:89:84:89: 6f:1b:c0:a7:a3:8b:d4:5b:5c:51:20:33:46:28:fa:2b:74:08: 76:55:1b:b1:bf:41:41:25:ac:0f:d5:a8:83:f7:99:5f:a8:26: 00:60:9b:71:cb:f0:9d:1f:e7:1c:78:68:e3:40:4d:8e:23:d7: e2:86:7c:91:ca:bf:a1:bf:c2:68:76:15:c5:35:66:9f:3f:5e: 9a:e8:68:58:69:3a:bf:d3:d0:aa:f0:ac:37:a2:81:7f:ee:4c: 52:e8:67:7c:83:3a:0f:7f:b5:96:4d:41:4e:1e:ab:a4:eb:8b: 77:b5:d5:df:a9:da:57:42:eb:b5:6c:38:04:be:2a:07:ba:32: 26:6f:e4:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFQjIxMTAvBgNVBAUTKDg2MDNBMEFDQTcyMDRCMEVGRUQ2NERCNzBERTUxQzc1 QkEwMzkzNTUwHhcNMjUwNTE3MDE1MTEwWhcNMjUwNTI0MDE1MTEwWjAYMRYwFAYD VQQDEw02ODI3ZWI4ZS1lNGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+WY92ZASwBenZhQT52ppufaIzjCOzy7dObQ1Awh/VQLV1FHSVouozQkzujG O/esHTVxEs0bKP2at193y8b1kAR3/n8RdHcfFMH0DWd1wTlrXUao3n7x28ZvWlGw Xx1DX9ADUqRd7WdOAMf+VXVYwvlVz0k08NZ5IrFK6r0cgWe9PKnTLmblvMCmW/65 qY71HKJ3QEOOFbWI5dX99axXCaWlx6uUpBXY6fApCI5MqfkKi3DPefNh1ePGSFCh Dc9+SUozFdrDVlFqh7Pz/oNxKnXSzwGra8gEOzy0eUtllKZ/j8rjYhrv42hNdvet 7Ofuhcg0ZDoXE0VZ2tdiWnoYvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLS4BfkR 1T+S1wcPcTSY/JJuxbHSMB8GA1UdIwQYMBaAFIYDoKynIEsO/tZNtw3lHHW6A5NV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVCMi83QUM3NjdERTA2 NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3Ny0xazIzRGVVY2Rib0Rr MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnT2dyS2NnU3c3LTFrMjNEZVVjZGJvRGsxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEVCMi83QUM3NjdERTA2NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3 Ny0xazIzRGVVY2Rib0RrMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0wooyXg2HCnJDwF/8yo4ZEtvsWaN1/xcy+JCs1ZJTTT7DUPJK5veO RK6/KuP4U4mfRmQmhKsQ+KLK1xnpbbhrC3AKRGe2qxtKOw1wFyQXc24eV7i/MAXT r6VdHfrTlDFVeGkmF2Ooc8jBNHfYWEkCLrnk34O+1ivv+EyJhIlvG8Cno4vUW1xR IDNGKPordAh2VRuxv0FBJawP1aiD95lfqCYAYJtxy/CdH+cceGjjQE2OI9fihnyR yr+hv8JodhXFNWafP16a6GhYaTq/09Cq8Kw3ooF/7kxS6Gd8gzoPf7WWTUFOHquk 64t3tdXfqdpXQuu1bDgEvioHujImb+QD -----END CERTIFICATE-----Generated at Sat May 17 22:35:02 2025 by rpki-client